<?
require_once('functions.php');

function GetUsers()
{
	$connect = GetConnection();
	return $connect->query('SELECT * FROM Psi_User');
}
function GetUser($id)
{
	$connect = GetConnection();
	$sql = "SELECT * FROM Psi_User WHERE id=$id";
	$results = $connect->query($sql);
	//echo $sql; die();
	$row = $results->fetch_assoc();
	$connect->close();
	return $row;
}
function SaveUser($row)
{
	$connect = GetConnection();
	$escape = EscapeRow($row, $connect);
	$sql = 	"UPDATE Psi_User "
		.	"Set "
		
		.	"FirstName='$escape[FirstName]', "
		.	"LastName='$escape[LastName]', "
		.	"Password='$escape[Password]', "
		.	"created_at='$escape[created_at]', "
		.	"Psi_Billing_id='$escape[Psi_Billing_id]' "

				.	"WHERE id=$row[id] ";
	$results = $connect->query($sql);
	//echo $sql;
	$error = $connect->error;
	$connect->close();
	
	return $error == '' ? TRUE : array('SQL Error' => $error);
}
function CreateUser($row) {
	$connect = GetConnection();
	$escape = EscapeRow($row, $connect);
	
	$FirstName = $_POST['FirstName'];
	$LastName = $_POST['LastName'];
	$Password = $_POST['Password'];
	
	$sql = 
		"INSERT INTO Psi_User (
			FirstName, LastName, Password, created_at
		) VALUES (
			'$escape[FirstName]', '$escape[LastName]', '$escape[Password]', NOW()
		)";
	
	$result = $connect->query($sql);
	if ($result) {
		// Success!
		header("Location: index.php");
		die();
	} else {
		// Display error message.
		echo "<p class=\"error\">Subject creation failed.</p>";
		echo "<p class=\"error\">" . mysql_error() . "</p>";
	}

	$error = $connect->error;
	$connect->close();
	
	return $error == '' ? TRUE : array('SQL Error' => $error);
}
function DeleteUser($id)
{
	$conn = GetConnection();
	$sql = 	"DELETE FROM Psi_Users WHERE id=$id";
	$results = $conn->query($sql);
	//echo $sql;
	$error = $conn->error;
	$conn->close();
	
	return $error == '' ? true : array('SQL Error' => $error);
}
/*function DeleteUser($row) {
	$connect = GetConnection();

	if (intval($_GET['id']) == 0) {
			header("Location: index.php");
			die();
	}
	
	$id = mysql_prep($_GET['id']);
	
	if ($subject = GetUser($id)) {
		
		$sql = "DELETE FROM Psi_User WHERE id = {$id} LIMIT 1";
		$result = $connect->query($sql);
		if ( $connect->affected_rows == 1 ) {
			header("Location: index.php");
			die();
		} else {
			// Deletion Failed
			echo "<p class=\"error\">Subject deletion failed.</p>";
			echo "<p class=\"error\">" . mysql_error() . "</p>";
			echo "<a href=\"index.php\">Return to Main Page</a>";
		}
	} else {
		// Theorist didn't exist in database
			header("Location: index.php");
			die();
	}

	$connect->close();
}*/
function ValidateUser($row)
{
	$errors = array();
	if(empty($row['FirstName'])) $errors['FirstName'] = 'First Name is required';
	if(empty($row['LastName'])) $errors['LastName'] = 'Last Name is required';
	if(empty($row['Password'])) $errors['Password'] = 'Password is required';

	return count($errors) == 0 ? true : $errors;
}